Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2017/06/06 12:0 a.m.142 views

Dropbear Post-authentication root RCE Vulnerability (CVE-2017-9078)

Dropbear is prone to a post-authentication root remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.8CVSS5.3AI score0.05142EPSS
Exploits0References2
NVD
NVD
added 2017/03/03 4:59 p.m.18 views

CVE-2016-7409

The dbclient and server in Dropbear SSH before 2016.74, when compiled with DEBUGTRACE, allows local users to read process memory via the -v argument, related to a failed remote ident...

5.5CVSS5.2AI score0.00452EPSS
Exploits0References5
OSV
OSV
added 2017/03/03 4:59 p.m.3 views

UBUNTU-CVE-2016-7407

The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary code via a crafted OpenSSH key file...

9.8CVSS7.6AI score0.05542EPSS
Exploits0References4
OSV
OSV
added 2017/03/03 4:59 p.m.2 views

UBUNTU-CVE-2016-7408

The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted 1 -m or 2 -c argument...

8.8CVSS7.7AI score0.03967EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/07/28 12:0 a.m.25 views

openSUSE Security Update : dropbear (openSUSE-2016-912)

This update for dropbear fixes four security issues bnc990363 : - A format string injection vulnerability allowed remotes attacker to run arbitrary code as root if specific usernames including '%' symbols could be created on the target system. If a dbclient user can control usernames or host...

6.1AI score
Exploits0References1
Rows per page
Query Builder